CVE-2026-28995
high
CVSS v3
8.8
CVSS v4 NEW
โ
VIR risk
8.8
Description
visionOS 26.5
Predictions
Exploit likelihood
82%
Patch ETA
โ
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Source: Apple Security HT ยท View original โ ยท proprietary-no-redistribution
Full prose not cached โ VIR stores only structured fields (affected/fixed versions, references) for this source. Click "View original" above for the vendor's full advisory.
Affected
| Vendor | Product | Version |
|---|---|---|
| apple | Accelerate | Apple Watch Series 6 and later |
| apple | Accounts | Apple Watch Series 6 and later |
| apple | APFS | Apple Watch Series 6 and later |
| apple | App Intents | Apple Watch Series 6 and later |
| apple | AppleJPEG | Apple Watch Series 6 and later |
| apple | AppleJPEG | Apple Watch Series 6 and later |
| apple | Audio | Apple Watch Series 6 and later |
| apple | CoreSymbolication | Apple Watch Series 6 and later |
| apple | ImageIO | Apple Watch Series 6 and later |
| apple | ImageIO | Apple Watch Series 6 and later |
| apple | ImageIO | Apple Watch Series 6 and later |
| apple | IOHIDFamily | Apple Watch Series 6 and later |
| apple | IOHIDFamily | Apple Watch Series 6 and later |
| apple | IOKit | Apple Watch Series 6 and later |
| apple | IOSurfaceAccelerator | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | Kernel | Apple Watch Series 6 and later |
| apple | LaunchServices | Apple Watch Series 6 and later |
| apple | mDNSResponder | Apple Watch Series 6 and later |
| apple | mDNSResponder | Apple Watch Series 6 and later |
| apple | SceneKit | Apple Watch Series 6 and later |
| apple | Spotlight | Apple Watch Series 6 and later |
| apple | Storage | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
| apple | WebKit | Apple Watch Series 6 and later |
OS impact
macOS Mixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
| โ | Affected | 18.7.9 |
apple Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
ios Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
| 18.7.9 | Fixed | โ |
tvos Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
watchos Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 26.5 | Fixed | โ |
References
CWEs
CWE-269
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.